prosim o kotrolu PC/NTB laguje

Zpráva

Rull · #1 Příspěvek od **Rull** » 05 srp 2023 17:13

dobry den,prosim o kotrolu NTB Lenovo ,pri spousteni aplikaci se laguje cca po 10 min pri spusteni,prikladam log z FRST + add

Rull · #2 Příspěvek od **Rull** » 05 srp 2023 17:13

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-08-2023
Ran by Lenovo (administrator) on LAPTOP-U1EQ41DB (LENOVO 81Y4) (05-08-2023 18:04:53)
Running from C:\Users\Lenovo\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 11 Home Version 22H2 22621.1992 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.228.0.20\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.228.0.20\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.228.0.20\OverwolfBrowser.exe <4>
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Users\Lenovo\AppData\Local\Overwolf\ProcessCache\0.228.0.20\cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj\curseforge.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHOST.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ProtectedModuleHost.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MfeAV\MfeAVSvc.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee LLC.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Windows\System32\mfevtps.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Program Files\WindowsApps\MicrosoftTeams_23195.1511.2279.823_x64__8wekyb3d8bbwe\msteams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.188\msedgewebview2.exe <12>
(DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxEM.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\FnHotkeyCapsLKNumLK.exe
(DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\FnHotkeyUtility.exe
(explorer.exe ->) (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (Snap Inc. -> Snap Inc) C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_7208949846a9b9dc\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_82b77f8c4618e2d0\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_9cf4db1a1fd1b22d\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\CSP\5.3.102.0\McCSPServiceHost.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe <3>
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\NisSrv.exe
(services.exe ->) (MUSARUBRA US LLC -> McAfee, LLC) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\SpotifyWidgetProvider.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\MQS\QcShm.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.3261.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\23.147.0716.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.13900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1085224 2020-06-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3088744 2023-06-19] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7039464 2022-05-18] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-07-16] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2671208 2023-08-05] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37050832 2023-07-25] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [MicrosoftEdgeAutoLaunch_5EF70F99B4529735F3564FFE246DB961] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4088256 2023-07-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1090168 2023-07-27] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [Snap Camera] => C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe [64900496 2022-01-28] (Snap Inc. -> Snap Inc)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [70738344 2023-08-03] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Run: [Opera Stable] => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe [2730912 2023-07-26] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\MountPoints2: {0a92e88b-e0ec-11ed-8390-5405db08ded0} - "D:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\sht13cPC: C:\Windows\System32\spool\prtprocs\x64\sht13cpc.dll [101080 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\sht13c Langmon: C:\Windows\system32\sht13clm.dll [79016 2022-01-24] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.170\Installer\chrmstp.exe [2023-08-05] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION
Task: {FB6133C0-C3A3-4C35-BB00-F1422F675C76} - System32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {B6CB2569-6E68-4F62-B3C9-FB6CD758D91D} - System32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {0ACAB0AB-9D43-48D1-BED5-E44582BE494E} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {B0885657-78C7-4482-84D2-6014EC39BDB8} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {58BAAC73-C5B5-48B4-BB4E-F33AF552427D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {E93EE720-70A3-4C61-9E4F-6F9A90EDAFCC} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\11b43470-48ad-4b70-84de-af5869c874dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {CBC9D670-172D-4EE6-BF86-FB964A378E96} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6f516229-d568-4fca-a8e8-1426aec49b92 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {9A0C753F-ADA0-4957-BE8F-A5D421220797} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b2cfb818-0ee6-4e6a-8c1d-3a0ed12769a5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {DD4A5AFF-1625-4FBB-9F17-C90559527E41} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d4121a2e-7f25-4b40-b096-ef1e5217ecdf => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {77C84F06-990E-41B0-9F46-608A428BC3E8} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {7ECD9B57-4D99-4DC1-B088-C390FCE82DAC} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {AA845F3F-378D-4F5E-94C7-05048B167A2C} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {37F875E1-149C-41A2-84D8-5749EBCD3C17} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {E7437109-E1A2-43A8-8D67-A6AFB3E77965} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {09BB0613-B05A-4DCA-A980-81A2FF427E80} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {F7604E12-E6D3-45AA-A765-D1B971AEDB0E} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {8F3008CC-C908-4B80-91E4-97FD741AC0EF} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {257D51AE-87BA-47B6-9046-8CE6803684FB} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {CD3CF5EC-C72F-491C-873A-62E226B33E75} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {AB99CAB1-82CF-480D-A1E5-5AB66B679DBE} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {43409CA0-A167-45A6-BAAD-745096EE7638} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee VirusScan\upgrade.exe [4564016 2023-01-16] (McAfee, LLC -> McAfee, LLC)
Task: {16BC5FCC-0DDB-40C4-BA8E-FE832882F22B} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\1.7.108\DADUpdater.exe [4094568 2023-02-17] (McAfee, LLC -> McAfee, LLC)
Task: {C7E0BCF9-BFB2-4D06-BC2B-A52D096BBFD2} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent => {ABCECA3B-EA5A-496B-A021-5C6BAB365E5C} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [932376 2022-09-02] (McAfee, LLC -> McAfee, LLC)
Task: {8B2036C0-FB1C-4F73-A24C-C5FD27A23B3A} - System32\Tasks\McAfee\McAfee Idle Detection Task => {ABCDCA3B-DE6B-5A7C-B132-6D7CBA63E5C5} C:\Program Files\Common Files\McAfee\TaskScheduler\McAMTaskAgent.exe [932376 2022-09-02] (McAfee, LLC -> McAfee, LLC)
Task: {D57563DF-770D-4DDC-B4A7-9C0AE0CD7964} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [768288 2022-03-24] (McAfee, LLC -> McAfee, LLC)
Task: {2EF99C08-C64F-4E0A-BD3D-8B7646A505B7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656184 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {252D5602-7EAD-43FE-9C90-959975DF82D4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656184 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F1972FCA-2145-455F-AB55-E047AAB115AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158656 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDD6338F-6A04-4949-A0C9-783D36F1EA85} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158656 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {53843F80-DEDB-478E-AE3C-6C813D4D52AC} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8D686513-616B-4D14-A628-8BB9604BB0EE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B78448AB-C42B-4F7E-990D-5A152318C27F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31598766-DE24-45D8-AD01-B0EFA88AB1EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D9B46E35-3C6E-4A30-90CF-3958B06062ED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MpCmdRun.exe [1649976 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {84793865-E74D-4A34-BB65-E85F0B58B2E9} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {5345D7E1-0529-40AD-A6A6-82F33CEEDB94} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [850928 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F82B1F42-4E55-4E41-825F-373B3546A0EF} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3293168 2020-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B7FC0283-5709-4182-84BE-75E2E1D03939} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80B2D7AA-D881-4ECF-AB77-A672D57CFD35} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {41DAE0A4-EA84-423D-BEE7-E9DBA616763A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CCE8D32-A62B-4B80-A9C5-513F91D7B37C} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1C0B60E7-DE46-4FEE-BD57-ED68B6EE50B0} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {007856A0-FC83-4229-BC20-B52823888C5E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {21A2B76D-EA50-4241-92A3-2AB9C3E84796} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B248DB21-5447-4042-81AC-4F53663430E6} - System32\Tasks\Opera scheduled Autoupdate 1690732045 => C:\Users\Lenovo\AppData\Local\Programs\Opera\launcher.exe [2730912 2023-07-26] (Opera Norway AS -> Opera Software)
Task: {D0D0D3DF-17CA-444B-BADE-0479B1BBE2C8} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-07-16] (Overwolf Ltd -> Overwolf LTD)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{42f3a324-ad33-4244-a7ae-842a36daeb96}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7fd20255-93fc-44e1-9bbb-7cf334d9f6b7}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-05]
Edge Extension: (Edge relevant text changes) - C:\Users\Lenovo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-07-25]

FireFox:
========
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKHKLM => not found
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> C:\Program Files\McAfee\MSC\npMcSnFFPl64.dll [2022-09-15] (McAfee, LLC -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> C:\Program Files (x86)\McAfee\MSC\npMcSnFFPl.dll [2022-09-15] (McAfee, LLC -> )
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2023-08-05]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.tetadrogerie.cz
CHR NewTab: Default -> Active:"chrome-extension://mefhakmgclhhfbdadeojlkbllmecialg/public/index.html"
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ714G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Nyan Cat Progress Bar for YouTube™) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdjaekjkckpdknkfncfnaibkabdcgmkg [2023-07-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-25]
CHR Extension: (Tabby Cat) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mefhakmgclhhfbdadeojlkbllmecialg [2023-07-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-20]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-10]
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\System Profile [2023-05-20]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable [2023-08-05]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-07-30]
OPR Extension: (Opera Wallet) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-08-02]
OPR Extension: (Aria) - C:\Users\Lenovo\AppData\Roaming\Opera Software\Opera Stable\Extensions\igpdmclhhlcpoindmhkhillbfhdgoegm [2023-07-30]
OPR Extension: (opera-intro) - C:\Users\Lenovo\AppData\Local\Programs\Opera\101.0.4843.25\resources\opera_intro_extension [2023-07-30]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11867104 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11513448 2023-08-05] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136552 2023-05-11] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-04-30] (Epic Games Inc. -> Epic Games, Inc.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3848680 2022-05-18] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_ec25230d3e6604c8\LenovoUtilityService.exe [279280 2023-05-08] (Lenovo -> Lenovo(beijing) Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.72.0\LenovoVantageService.exe [34176 ] (Lenovo -> Lenovo)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [871752 2023-07-28] (McAfee, LLC -> McAfee, LLC)
S4 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_22_7\McApExe.exe [815384 2022-09-15] (McAfee, LLC -> McAfee, LLC)
S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [584296 2020-02-06] (McAfee, LLC. -> McAfee, LLC.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\5.3.102.0\\McCSPServiceHost.exe [3378784 ] (McAfee, LLC -> McAfee, LLC)
S3 McSecDashboardService; C:\Program Files\McAfeeDashboard\McSecDashboardService.exe [1161032 2022-07-14] (McAfee, LLC -> McAfee, LLC)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC)
S3 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [1215944 2022-09-15] (MUSARUBRA US LLC -> McAfee, LLC)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1570072 2022-09-02] (McAfee, LLC -> McAfee, LLC)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-07-16] (Overwolf Ltd -> Overwolf LTD)
R2 PEFService; C:\Program Files\Common Files\McAfee\PEF\CORE\PEFService.exe [4247192 2022-09-06] (McAfee, LLC -> McAfee, LLC)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [20738360 2023-07-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [11047944 2023-06-19] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\NisSrv.exe [3244928 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe [133576 2023-07-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [77888 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [43896 2020-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Lenovo Group Ltd.)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2022-05-18] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S3 HoYoProtect; C:\WINDOWS\system32\HoYoKProtect.sys [3712576 2023-05-17] (Microsoft Windows Hardware Compatibility Publisher -> miHoYo)
R3 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [476224 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349760 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [84440 2022-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Trellix US LLC.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [445504 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [920128 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [665424 2022-07-07] (Musarubra US LLC -> Trellix US LLC.)
S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [119632 2022-07-07] (Musarubra US LLC -> Trellix US LLC.)
R3 mfeplk; C:\WINDOWS\System32\drivers\mfeplk.sys [112712 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [234584 2022-09-15] (Musarubra US LLC -> Trellix US LLC.)
R3 MpKsld56903b7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B3394D20-79B7-43FF-8E57-8AF6156F2A2F}\MpKslDrv.sys [221480 2023-08-05] (Microsoft Windows -> Microsoft Corporation)
R3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [22824 2021-04-26] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [23403712 2023-06-19] (Riot Games, Inc. -> Riot Games, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2023-07-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-07-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-07-25] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-05 18:04 - 2023-08-05 18:05 - 000000000 ____D C:\FRST
2023-08-05 15:59 - 2023-08-05 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2023-08-01 12:00 - 2023-08-01 12:00 - 000728468 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-01 12:00 - 2023-08-01 12:00 - 000151704 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-30 20:42 - 2023-07-30 20:42 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Microsoft\MMC
2023-07-30 20:29 - 2023-07-30 20:29 - 000002276 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prism Launcher.lnk
2023-07-30 19:52 - 2023-07-30 19:55 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\AnyDesk
2023-07-30 19:52 - 2023-07-30 19:52 - 000394240 _____ (Google Inc.) C:\Users\Lenovo\Downloads\gcapi.dll
2023-07-30 19:51 - 2023-07-30 19:51 - 004040776 _____ (AnyDesk Software GmbH) C:\Users\Lenovo\Downloads\AnyDesk.exe
2023-07-30 17:47 - 2023-07-30 17:47 - 000004218 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1690732045
2023-07-30 17:47 - 2023-07-30 17:47 - 000001417 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2023-07-30 17:47 - 2023-07-30 17:47 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\java
2023-07-30 17:47 - 2023-07-30 17:47 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Opera Software
2023-07-30 17:46 - 2023-07-30 20:25 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\.tlauncher
2023-07-30 17:46 - 2023-07-30 17:46 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Opera Software
2023-07-30 17:45 - 2023-07-30 17:45 - 023679584 _____ (TLauncher Inc.) C:\Users\Lenovo\Downloads\TLauncher-2.885-Installer-1.1.3.exe
2023-07-30 17:14 - 2023-07-30 17:14 - 000341074 _____ C:\Users\Lenovo\Downloads\installer-2.1.11-shrunk.jar
2023-07-30 17:14 - 2023-07-30 17:14 - 000050792 _____ C:\Users\Lenovo\Downloads\installer-2.1.11-sources (1).jar
2023-07-30 17:12 - 2023-07-30 17:12 - 000050792 _____ C:\Users\Lenovo\Downloads\installer-2.1.11-sources.jar
2023-07-30 16:44 - 2023-07-30 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2023-07-30 16:44 - 2023-07-30 16:44 - 000000000 ____D C:\Program Files\Common Files\Oracle
2023-07-30 16:43 - 2023-07-30 16:43 - 160940664 _____ (Oracle Corporation) C:\Users\Lenovo\Downloads\jdk-17.0.8_windows-x64_bin.exe
2023-07-30 15:50 - 2023-07-30 16:44 - 000072816 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2023-07-30 15:50 - 2023-07-30 16:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2023-07-30 15:50 - 2023-07-30 16:44 - 000000000 ____D C:\Program Files\Java
2023-07-30 15:50 - 2023-07-30 15:50 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Sun
2023-07-30 15:47 - 2023-07-30 15:48 - 065672296 _____ (Oracle Corporation) C:\Users\Lenovo\Downloads\jre-8u381-windows-x64.exe
2023-07-30 15:37 - 2023-08-03 00:58 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\PrismLauncher
2023-07-30 15:37 - 2023-07-30 15:37 - 000000000 ____D C:\ProgramData\Oracle
2023-07-30 15:36 - 2023-07-30 15:36 - 017352544 _____ C:\Users\Lenovo\Downloads\PrismLauncher-Windows-MSVC-Setup-7.2.exe
2023-07-28 20:48 - 2023-07-28 20:48 - 000000900 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2023-07-28 20:47 - 2023-08-01 11:53 - 000000000 ____D C:\Program Files\TeamViewer
2023-07-28 20:46 - 2023-07-28 20:47 - 057589488 _____ (TeamViewer Germany GmbH) C:\Users\Lenovo\Downloads\TeamViewer_Setup_x64.exe
2023-07-28 20:39 - 2023-07-28 20:48 - 000000000 ____D C:\Users\Lenovo\AppData\Local\TeamViewer
2023-07-28 20:12 - 2023-07-28 20:12 - 010092544 _____ C:\Users\Lenovo\Downloads\hamachi (1).msi
2023-07-18 18:45 - 2023-07-18 18:45 - 000000000 ____D C:\Users\Lenovo\AppData\Local\EALaunchHelper
2023-07-17 11:33 - 2023-07-17 11:33 - 000000000 ____D C:\Users\Lenovo\AppData\Local\EADesktop
2023-07-14 18:44 - 2023-07-14 18:44 - 000061151 _____ C:\Users\Lenovo\Downloads\5541_Marketa_Theiberova_202306.pdf
2023-07-12 01:22 - 2023-07-12 01:24 - 000000000 ___HD C:\$WinREAgent
2023-07-08 14:33 - 2023-07-17 11:33 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Origin
2023-07-08 14:33 - 2023-07-08 14:33 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Link2EA
2023-07-08 14:22 - 2023-07-17 11:33 - 000000000 ____D C:\ProgramData\EA Desktop
2023-07-08 14:22 - 2023-07-11 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2023-07-08 14:22 - 2023-07-08 14:22 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Electronic Arts
2023-07-08 14:22 - 2023-07-08 14:22 - 000000000 ____D C:\Program Files\Electronic Arts
2023-07-08 14:22 - 2023-07-08 14:22 - 000000000 ____D C:\Program Files\EA Games

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-05 18:04 - 2022-08-20 16:56 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-05 18:04 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-05 18:01 - 2022-10-19 14:07 - 000000000 ____D C:\Program Files (x86)\Steam
2023-08-05 17:45 - 2022-09-03 17:02 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2023-08-05 17:33 - 2023-02-13 21:52 - 000000000 ____D C:\Users\Lenovo\AppData\Local\LogMeIn Hamachi
2023-08-05 17:32 - 2022-08-20 16:51 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Packages
2023-08-05 17:32 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-05 17:31 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-05 17:30 - 2022-08-20 17:00 - 000002258 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-05 17:29 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-05 17:29 - 2020-12-04 10:52 - 000000000 ___RD C:\Users\Lenovo\OneDrive
2023-08-05 16:04 - 2020-09-19 04:12 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-05 15:59 - 2023-03-11 17:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-04 21:50 - 2023-03-11 17:33 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Battle.net
2023-08-04 21:48 - 2022-08-21 17:40 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Overwolf
2023-08-04 21:48 - 2020-12-04 10:50 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles
2023-08-03 11:44 - 2023-04-21 19:38 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Discord
2023-08-03 11:44 - 2022-08-20 17:16 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\discord
2023-08-02 23:27 - 2023-03-11 17:19 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1805511044-1846461154-3266819995-1001
2023-08-02 23:27 - 2022-08-20 16:53 - 000002395 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-02 22:55 - 2023-03-11 17:19 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76}
2023-08-02 22:55 - 2023-03-11 17:19 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753}
2023-08-02 12:39 - 2020-09-19 04:01 - 000000000 ____D C:\Program Files\Microsoft Office
2023-08-01 12:00 - 2023-03-11 17:36 - 001718028 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-01 12:00 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-08-01 11:56 - 2022-08-20 17:09 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2023-08-01 11:53 - 2023-03-11 17:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-01 11:53 - 2023-03-11 17:15 - 000000000 ____D C:\Users\Lenovo
2023-08-01 11:53 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2023-08-01 11:53 - 2020-09-19 04:09 - 000000000 ___HD C:\Intel
2023-08-01 11:53 - 2020-05-06 20:33 - 000012288 ___SH C:\DumpStack.log.tmp
2023-07-31 20:00 - 2022-08-20 17:21 - 000000000 ____D C:\Program Files\Genshin Impact
2023-07-30 20:36 - 2023-02-11 16:27 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\.minecraft
2023-07-30 20:35 - 2023-02-11 16:26 - 000000000 ____D C:\XboxGames
2023-07-30 20:35 - 2022-08-20 16:51 - 000000000 ____D C:\ProgramData\Packages
2023-07-30 20:34 - 2022-08-20 16:53 - 000000000 ____D C:\Users\Lenovo\AppData\Local\PlaceholderTileLogoFolder
2023-07-30 20:18 - 2022-08-20 16:57 - 000000000 ____D C:\Users\Lenovo\AppData\Local\D3DSCache
2023-07-30 17:46 - 2021-12-03 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TLauncher
2023-07-30 16:23 - 2022-05-07 07:17 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-07-30 16:22 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-07-30 07:07 - 2022-08-20 16:37 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-07-28 11:46 - 2023-03-11 17:32 - 000000000 ____D C:\Program Files (x86)\Battle.net
2023-07-27 19:32 - 2023-03-11 17:19 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1805511044-1846461154-3266819995-1001
2023-07-27 18:13 - 2022-11-15 16:51 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2023-07-27 18:13 - 2020-09-19 04:04 - 000002524 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2023-07-27 18:13 - 2020-09-19 04:04 - 000002495 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2023-07-27 18:13 - 2020-09-19 04:04 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2023-07-27 18:13 - 2020-09-19 04:04 - 000002416 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2023-07-27 18:13 - 2020-09-19 04:04 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2023-07-27 18:12 - 2022-08-20 17:04 - 000000000 ____D C:\ProgramData\Riot Games
2023-07-27 16:56 - 2022-10-20 15:36 - 000918960 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-07-25 18:30 - 2022-08-21 17:42 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-07-25 16:39 - 2022-08-20 16:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-07-21 15:46 - 2020-09-19 04:04 - 000002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2023-07-21 15:04 - 2023-04-28 21:51 - 000000000 ____D C:\Program Files\Star Rail
2023-07-21 15:04 - 2022-08-20 17:21 - 000000000 ____D C:\Users\Lenovo\AppData\Local\HoYoverse
2023-07-19 19:15 - 2020-09-19 04:04 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2023-07-17 11:33 - 2022-10-19 15:06 - 000000000 ____D C:\ProgramData\Origin
2023-07-16 20:22 - 2023-03-12 01:05 - 000000000 ____D C:\Program Files (x86)\Overwatch
2023-07-14 17:05 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-07-14 16:45 - 2023-03-11 17:14 - 000295328 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-07-14 16:45 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-14 16:45 - 2020-09-19 04:14 - 000000000 ____D C:\Program Files (x86)\McAfee
2023-07-14 14:18 - 2023-03-11 17:34 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2023-07-12 17:47 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-12 17:36 - 2022-08-20 19:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 14:03 - 2022-08-20 19:29 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 12:14 - 2023-03-11 17:18 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-11 21:11 - 2023-03-11 17:19 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-07-11 21:11 - 2023-03-11 17:19 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-07-08 16:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2023-07-08 14:46 - 2020-09-19 04:07 - 000000000 ____D C:\ProgramData\Package Cache
2023-07-08 14:44 - 2022-11-15 16:52 - 000000000 ____D C:\Users\Lenovo\AppData\Local\EpicGamesLauncher

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Rull · #3 Příspěvek od **Rull** » 05 srp 2023 17:13

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-08-2023
Ran by Lenovo (05-08-2023 18:06:20)
Running from C:\Users\Lenovo\OneDrive\Plocha
Microsoft Windows 11 Home Version 22H2 22621.1992 (X64) (2023-03-11 15:29:20)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1805511044-1846461154-3266819995-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1805511044-1846461154-3266819995-503 - Limited - Disabled)
Guest (S-1-5-21-1805511044-1846461154-3266819995-501 - Limited - Disabled)
Lenovo (S-1-5-21-1805511044-1846461154-3266819995-1001 - Administrator - Enabled) => C:\Users\Lenovo
WDAGUtilityAccount (S-1-5-21-1805511044-1846461154-3266819995-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
AV: McAfee VirusScan (Disabled - Up to date) {FE987762-0FB6-6BB6-1BF1-73F8ED8566FA}
FW: McAfee Firewall (Disabled) {C6A3F647-45D9-6AEE-30AE-DACD13562181}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
CurseForge (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.230.3.1 - Overwolf app)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.251.1.5504 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{f39d5c85-5b2b-4e3f-a523-e60242aed116}) (Version: 12.251.1.5504 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.27.0.0 - COGNOSPHERE PTE. LTD.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.170 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{44C34709-F068-4CBC-8A71-515EDBC3B2A6}) (Version: 10.1.18383.8213 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Java 8 Update 381 (64-bit) (HKLM\...\{77924AE4-039E-4CA4-87B4-2F64180381F0}) (Version: 8.0.3810.9 - Oracle Corporation)
Java(TM) SE Development Kit 17.0.8 (64-bit) (HKLM\...\{77C5AB95-C9DB-5259-B8E9-0AB8E68ED510}) (Version: 17.0.8.0 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
LogMeIn Hamachi (HKLM-x32\...\{B49685C9-32FA-4194-A43F-DAF6BD60F2EC}) (Version: 2.3.0.78 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.78 - LogMeIn, Inc.)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R49 - McAfee, LLC)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.16626.20134 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.188 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.188 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\OneDriveSetup.exe) (Version: 23.147.0716.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{43D501A5-E5E3-46EC-8F33-9E15D2A2CBD5}) (Version: 5.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31938 (HKLM-x32\...\{d92971ab-f030-43c8-8545-c66c818d0e05}) (Version: 14.34.31938.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31938 (HKLM-x32\...\{4f84f2dc-3f70-433a-8f50-8293e0089b0f}) (Version: 14.34.31938.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31938 (HKLM\...\{7DA37AE3-D8AE-49B1-9BDC-23CA0AB9FF22}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31938 (HKLM\...\{0AE39060-F209-4D05-ABC7-54B8F9CFA32E}) (Version: 14.34.31938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 3.20.3.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.3.63 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12527.20482 - Microsoft Corporation) Hidden
Opera Stable 101.0.4843.25 (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Opera 101.0.4843.25) (Version: 101.0.4843.25 - Opera Software)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.228.0.20 - Overwolf Ltd.)
Porofessor.gg (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.306 - Overwolf app)
Prism Launcher (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\PrismLauncher) (Version: 7.2 - Prism Launcher Contributors)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Snap Camera 1.18.0 (HKLM-x32\...\{024A6CF5-627D-497F-980B-B9A6EC5C40AF}_is1) (Version: 1.18.0 - Snap Inc.)
Star Rail (HKLM\...\Star Rail) (Version: 2.27.0.0 - COGNOSPHERE PTE. LTD.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.44.4 - TeamViewer)
VALORANT (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
Valorant Tracker (HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\...\Overwolf_ipmlnnogholfmdmenfijjifldcpjoecappfccceh) (Version: 1.13.4 - Overwolf app)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.827 - McAfee, LLC)

Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-08] (INTEL CORP) [Startup Task]
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.57.2.0_x64__6rarf9sa4v8jt [2023-07-21] (Disney)
Dolby Audio -> C:\Program Files\WindowsApps\dolbylaboratories.dolbyaudio_3.20602.609.0_x64__rz1tebttyb220 [2022-08-20] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-10-24] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_147.1.1079.0_x64__v10z8vjag6ke6 [2023-07-17] (HP Inc.)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2306.25.0_x64__k1h2ywk1493x8 [2023-07-27] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.4.18.0_x64__5grkq8ppsgwt4 [2023-07-25] (LENOVO INC) [Startup Task]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2305.14003.0_x64__8wekyb3d8bbwe [2023-06-07] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.39.0_x64__8wekyb3d8bbwe [2023-03-12] (Microsoft Corp.)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.2.16.0_x64__8wekyb3d8bbwe [2023-07-30] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-11] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2022-08-20] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-08-20] (Microsoft Corporation)
Simple Wi-Fi Analyzer -> C:\Program Files\WindowsApps\48425ShipwreckSoftware.597360E4258D0_1.9.1001.0_x64__jh2negtepkzpr [2023-08-05] (Shipwreck Software)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0 [2023-07-26] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2022-09-15] (McAfee, LLC -> McAfee, LLC)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_5adc6075318430cf\nvshext.dll [2021-08-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2022-09-15] (McAfee, LLC -> McAfee, LLC)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-08-05 17:45 - 2023-08-05 17:45 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2023-08-05 17:45 - 2023-08-05 17:45 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2023-04-09 23:08 - 2022-01-27 19:23 - 003409408 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Snap Inc\Snap Camera\libcrypto-1_1-x64.dll
2023-04-09 23:08 - 2022-01-27 19:23 - 000682496 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Snap Inc\Snap Camera\libssl-1_1-x64.dll
2023-08-05 17:45 - 2023-08-05 17:45 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2023-08-05 17:45 - 2023-08-05 17:45 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2023-08-05 17:45 - 2023-08-05 17:45 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2023-08-05 17:45 - 2023-08-05 17:45 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:7AD7FA8AB1 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:89C036AC43 [4306]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2022-09-15] (McAfee, LLC -> McAfee, LLC)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2022-09-15] (McAfee, LLC -> McAfee, LLC)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img19.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{4F443243-32EA-4AEE-B231-63EE500DC048}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [TCP Query User{6F156D9F-E664-4DB8-933E-94C96D803E0E}C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe] => (Allow) C:\riot games\valorant\live\shootergame\binaries\win64\valorant-win64-shipping.exe (Riot Games, Inc. -> Riot Games)
FirewallRules: [UDP Query User{A97787BA-CE58-4276-B64B-F2A9F1790F5A}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [TCP Query User{C59D6106-BF4E-48C7-9CF3-1DB7A23B4321}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [UDP Query User{E19A5FDF-4EEB-493D-9170-7CBF38819FC7}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{BE4B099D-2CB7-43F7-951B-B3B0AD0597BB}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{C8F38A7B-B3B7-4205-8141-1B41CF7B2B1D}C:\users\lenovo\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\lenovo\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{45DB296B-0825-40CC-B384-B918993761BC}C:\users\lenovo\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\users\lenovo\curseforge\minecraft\install\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{7DEFD7AE-BE24-4BEF-9933-1EB4E3CF575D}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [TCP Query User{F17F9C5F-7F22-4018-BD28-32B70BA245A4}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [UDP Query User{0EE45959-0DDC-4248-ACA8-337EAFE941D8}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{2DFD577B-FAE0-48E2-A475-4F05D753CAE0}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{A8E47C26-7B18-4563-B4B8-EC9D9FE8F119}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{C4769BF4-258A-4217-9624-679994E90911}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{F3A3574D-6080-487E-BB40-922F896B48CF}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [TCP Query User{5073D244-803A-4D38-9AD8-E70F7D528349}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [UDP Query User{52E4AE00-6131-45AB-A945-911E0B2836D2}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C6E6B333-18CE-4459-BE5C-DC74033D0DEA}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{655176AF-E691-4445-B576-3F8C203DAA34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Drakensang Online\thinclient.exe (Bigpoint GmbH) [File not signed]
FirewallRules: [{92B40B10-1F1D-49D4-A054-8E8D91D71401}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Drakensang Online\thinclient.exe (Bigpoint GmbH) [File not signed]
FirewallRules: [{61F81A75-C023-4B24-B1AC-996D5607571C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [{95875E20-6CF5-41AC-B565-FA9A401F4E66}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Among Us\Among Us.exe () [File not signed]
FirewallRules: [UDP Query User{579AA3CF-17B8-4C9E-B9AC-93ADA3C2CC40}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{BF291CCE-202D-4FB1-B797-93B2BDECAFB1}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{E23A5F38-3ED4-4FA3-9330-D5342AD3F2F2}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{A968C3B3-D3B8-4FE6-9700-39F8D4097A2D}C:\riot games\riot client\riotclientservices.exe] => (Allow) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{15E9A311-1631-483E-A28D-A77A9377CBAB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{21939049-CD83-4669-8405-868E85EE31A8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F80FB460-1E33-4A31-B9AB-C3792E7D2AEC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DE980642-1494-472E-A21E-F87A3BD7EE37}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E3DD9345-71E6-459C-9FDC-1F70AFAC4438}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A7FA6F3D-6A39-45C6-9C6F-4EDDE4711B39}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BEAE9217-68D9-4647-99D0-5091516A348F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DDFD69EC-B3F6-45B8-B865-C054566A2507}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F66913DD-5613-43A6-B47F-91AD5FB1E5A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4EA1E58C-9C46-4A92-B389-01470C67BA2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B2336C8B-27DC-4A6C-BDC9-F46527679729}] => (Allow) C:\Program Files (x86)\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC)
FirewallRules: [{043A29E4-540B-4A1D-A8F6-CE743DCCA5CD}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC)
FirewallRules: [{C6516D0F-268D-4BB8-BFE4-8AB7B2789E39}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File
FirewallRules: [TCP Query User{2CB40068-8E17-4114-8506-915AF20F35EB}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [UDP Query User{AE184C5E-E314-4779-8010-F49A18623E79}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [TCP Query User{C3D61343-E51C-4308-A03B-410925C3FFA6}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D01F887D-FE8B-4637-978F-E83BEBEF1613}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{D16B44BD-ACA4-4901-A0B9-09E6F2A246D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bread &amp; Fred Demo\Bread&Fred.exe () [File not signed]
FirewallRules: [{BE351C3B-BFD3-44E0-9895-A108CE74B942}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bread &amp; Fred Demo\Bread&Fred.exe () [File not signed]
FirewallRules: [TCP Query User{15DBE298-6F5D-4FB1-899D-1868FA3CBBE2}C:\program files\star rail\games\starrail.exe] => (Block) C:\program files\star rail\games\starrail.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{B2CAE292-E5D5-4687-AE16-74BC0ABB2D18}C:\program files\star rail\games\starrail.exe] => (Block) C:\program files\star rail\games\starrail.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [TCP Query User{F618F76D-2F17-476F-B928-AF3817367210}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{A7C9AAD2-4A62-42AF-B6E5-1EBCDC53A422}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [{6F099FF9-B261-4406-8A08-9EACC720ED49}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{EED258CD-5245-4EEC-AD81-A9CFD6A6557E}C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [UDP Query User{B3FC4E7C-E922-4A68-BC88-436AA6D300CC}C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe] => (Allow) C:\program files\genshin impact\genshin impact game\genshinimpact_data\plugins\zfgamebrowser.exe (COGNOSPHERE PTE. LTD. -> )
FirewallRules: [TCP Query User{4A107956-CD61-4256-AFF1-CDFB6BC2D091}C:\program files\epic games\fallguys\fallguys_client_game.exe] => (Allow) C:\program files\epic games\fallguys\fallguys_client_game.exe () [File not signed]
FirewallRules: [UDP Query User{BCB42049-99BD-4D10-BF9A-7E64BC67D04E}C:\program files\epic games\fallguys\fallguys_client_game.exe] => (Allow) C:\program files\epic games\fallguys\fallguys_client_game.exe () [File not signed]
FirewallRules: [{79CAC2D1-FD7E-44B4-A6C2-C71E6CD5117E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{8002D6B9-DD78-4D6B-B9B6-893EF0F3E385}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{3171FDAE-7F85-4033-A69C-38E6FA9D2F91}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{38659390-2417-4806-9329-DEE6C1412877}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E9932C56-7741-4634-A8C6-EAAF9B93493A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{36EB20EE-8595-456B-93EA-EB331DF2BEF0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7FDE38F4-476A-4C97-AB89-D916DBB8D603}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A5435989-C383-4041-BC4E-73259FB8185A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{84FB316A-AF03-47DA-AC7B-8C0ED94AFB53}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{EAAAD5A2-EC48-4D7D-B738-AFB22FA6D8F9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4EE3DB8A-07A3-4C49-BE8B-6331D9EAC1BE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7AFBA0DA-BDB3-486E-896B-BF5296D3A81C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{587B1FDD-330F-470F-A636-A6FCB41629A8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A1B27B97-C4FC-4DF3-B4B5-4CC03ADB2F6F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C765A23-A695-4068-AD32-22AAF641EE26}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C6D1CC8C-E79A-4D81-95B7-EF1278B3BF63}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{796507FB-4733-4158-82A0-2E913EA4C57D}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{5A6EC7D1-B855-4AB1-838E-044753DEFB7A}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{B707D7B2-0568-4A63-8B59-44031FAC7293}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{5086946C-473C-4E6C-91DE-243DF3015C3E}] => (Allow) C:\Program Files (x86)\Overwolf\0.228.0.20\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{33295256-6656-4A88-8F43-EC7680306D97}] => (Allow) C:\Program Files (x86)\Overwolf\0.228.0.20\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{E916E15F-F58C-46C6-AE4F-73522C0464F9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C2F152DF-951F-4778-8085-049B795366AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5A3FEAFE-19B1-44AC-ACEC-71C012904555}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{96655BE2-C99B-4E3E-ADC5-996191FCE2B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1A4BCDB3-541E-4E24-9C06-BD4F387D5336}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{701062DF-F137-4EA7-BECC-26D96A501A6A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{07AE77C1-4572-4F79-8311-985C22DA7C08}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{06B4F1F8-30E4-4CCB-B5A8-F91FBCACFAAD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94F17945-3642-43B7-81AE-4B3523453257}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5CD10CF0-DC30-4EE1-BC31-B324B9D2FCF1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C6BAEA31-E7E1-4484-9CAD-33B2CA477217}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9A23A1F2-BF8E-49E2-A2E4-446FFF4C2452}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2FFD560B-A47B-4016-8498-9AB5C5563F59}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{39BC35BB-5D01-4B85-B4F1-E58EB92B8705}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7E7854EF-3883-4173-91CF-6BE25D917DA8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.188\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2A66FC9E-397F-46E2-9980-7664DE098DC5}C:\program files\java\jdk-17\bin\javaw.exe] => (Block) C:\program files\java\jdk-17\bin\javaw.exe
FirewallRules: [UDP Query User{5CB1EDE9-85AE-4939-9838-099C30E62E0B}C:\program files\java\jdk-17\bin\javaw.exe] => (Block) C:\program files\java\jdk-17\bin\javaw.exe
FirewallRules: [TCP Query User{3305F381-6C8B-4E09-8417-D41ACB0B1990}C:\users\lenovo\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Block) C:\users\lenovo\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{002696D0-8B69-42E3-B782-D0311DA717F4}C:\users\lenovo\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Block) C:\users\lenovo\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [{390CF553-A8AC-4961-BD50-3826193FC118}] => (Allow) C:\Users\Lenovo\AppData\Local\Programs\Opera\101.0.4843.25\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{B032B62B-19D1-42D3-9EDA-6E46E1AA2F04}C:\users\lenovo\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\lenovo\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{6564C72F-0455-47F1-85B1-ABB1E622AA0E}C:\users\lenovo\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\lenovo\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{AB178085-D5F5-42AA-8EC1-9E6FAAABDB3B}C:\users\lenovo\downloads\anydesk.exe] => (Block) C:\users\lenovo\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [UDP Query User{F07A535B-6F55-4BD1-A613-53C2F3ADF440}C:\users\lenovo\downloads\anydesk.exe] => (Block) C:\users\lenovo\downloads\anydesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{F95944FC-1AE5-4932-ACFE-5EB686C0ECF9}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23195.1511.2279.823_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{965A1612-E55E-46D4-A047-4B75DF833902}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23195.1511.2279.823_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{586983EC-D2CD-4C6A-8F2A-3B8BF6546A86}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B97311B2-ABF1-46CA-9514-6CB1A671532B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DD95EF-8CC3-4799-BF40-BA11D41E41EC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D70C3647-067C-4CFB-BF87-43DE4F00B55C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.100.3203.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7B1A5829-D1F4-4C63-9FB9-C322FEA17FAB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

29-07-2023 04:59:35 Windows Update
30-07-2023 16:44:24 Installed Java(TM) SE Development Kit 17.0.8 (64-bit)
03-08-2023 11:44:40 Windows Update

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (08/05/2023 05:45:29 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-U1EQ41DB)
Description: Název chybující aplikace: EALaunchHelper.exe, verze: 12.251.1.5504, časové razítko: 0x64c8cc5e
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22621.608, časové razítko: 0xf5fc15a3
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007f61e
ID chybujícího procesu: 0x0x5d74
Čas spuštění chybující aplikace: 0x0x1d9c7b3d97326aa
Cesta k chybující aplikaci: C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: f1cb8c84-1b09-4bbf-ab71-cafd22dac9c0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/01/2023 11:55:24 AM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: Službě Centrum zabezpečení Windows se nepodařilo načíst instance objektu FirewallProduct z úložiště dat.

Error: (07/30/2023 06:10:03 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 5.823.3261.0 programu GameBar.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.

Error: (07/30/2023 04:25:11 PM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: Službě Centrum zabezpečení Windows se nepodařilo načíst instance objektu FirewallProduct z úložiště dat.

Error: (07/26/2023 03:24:05 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-U1EQ41DB)
Description: Název chybující aplikace: EALaunchHelper.exe, verze: 12.244.0.5501, časové razítko: 0x64bae90f
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22621.608, časové razítko: 0xf5fc15a3
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007f61e
ID chybujícího procesu: 0x0x30b8
Čas spuštění chybující aplikace: 0x0x1d9bfc471b7df5e
Cesta k chybující aplikaci: C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 9605db13-aa43-4185-93ab-4dcd75851e46
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/25/2023 04:40:20 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 5.823.3261.0 programu GameBar.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.

Error: (07/19/2023 07:11:04 PM) (Source: SecurityCenter) (EventID: 18) (User: )
Description: Službě Centrum zabezpečení Windows se nepodařilo načíst instance objektu FirewallProduct z úložiště dat.

Error: (07/19/2023 02:23:14 PM) (Source: Application Error) (EventID: 1000) (User: Window Manager)
Description: Název chybující aplikace: dwm.exe, verze: 10.0.22621.1635, časové razítko: 0x6201aae6
Název chybujícího modulu: CoreMessaging.dll, verze: 10.0.22621.1635, časové razítko: 0x9aa87c62
Kód výjimky: 0xe0464645
Posun chyby: 0x000000000004593e
ID chybujícího procesu: 0x0x6168
Čas spuštění chybující aplikace: 0x0x1d9ba33ce267ec8
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\CoreMessaging.dll
ID zprávy: 6429c3e7-5c34-45b9-af97-00a7c8954efa
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

System errors:
=============
Error: (08/03/2023 12:58:12 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19580.1000.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/03/2023 12:58:12 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/03/2023 12:58:12 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/03/2023 12:58:12 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/03/2023 12:58:12 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/02/2023 06:17:04 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19580.1000.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/02/2023 06:17:04 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/02/2023 06:17:04 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-U1EQ41DB)
Description: Server {7966B4D8-4FDC-4126-A10B-39A3209AD251} se v daném časovém limitu neregistroval u služby DCOM.

Windows Defender:
================
Date: 2023-08-04 22:01:11
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {70B2DA74-010F-40EA-8304-CEAA35621F7D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-08-02 18:16:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {991A006A-9F46-4BEF-89E2-24F4857A5ACC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-31 20:12:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {24E2D2B3-29B4-4A10-81FE-C36A6908A156}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-30 07:16:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {ACAD24AD-7681-413A-A483-6629464EA097}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-07-28 20:59:57
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4F509C63-47F1-438C-823C-6243CE524280}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2023-06-11 17:19:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.836.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2023-06-11 17:19:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.836.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2023-06-11 17:19:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.836.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2023-06-11 17:19:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.836.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2023-06-11 17:19:10
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.836.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2023-08-05 17:45:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e6980897e3126266\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2023-08-05 17:43:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO EGCN27WW 07/21/2020
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-10300H CPU @ 2.50GHz
Percentage of memory in use: 51%
Total physical RAM: 16252.24 MB
Available physical RAM: 7945.36 MB
Total Virtual: 23676.24 MB
Available Virtual: 12982.42 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:474.77 GB) (Free:99.7 GB) (Model: SKHynix_HFM512GDHTNI-87A0B) NTFS

\\?\Volume{49d8eeda-7487-4cc6-9d7a-327570c26736}\ () (Fixed) (Total:0.92 GB) (Free:0.08 GB) NTFS
\\?\Volume{766d4436-4d59-4224-bab3-f1b1d4844316}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{303de5cc-97e3-44c0-8f63-97a0fdb6f125}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 47DCA2DC)

Partition: GPT.

==================== End of Addition.txt =======================

#4 Příspěvek od **Rudy** » 05 srp 2023 17:54

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Rull · #5 Příspěvek od **Rull** » 05 srp 2023 18:48

nerad bych udelal nejakou chybu je tam neco od Lenovo

#6 Příspěvek od **Rudy** » 05 srp 2023 20:01

To je předinstalovaný soft od Lenova. Ponechte.

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:7AD7FA8AB1 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:89C036AC43 [4306]
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
FirewallRules: [UDP Query User{A97787BA-CE58-4276-B64B-F2A9F1790F5A}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [TCP Query User{C59D6106-BF4E-48C7-9CF3-1DB7A23B4321}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [UDP Query User{E19A5FDF-4EEB-493D-9170-7CBF38819FC7}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{BE4B099D-2CB7-43F7-951B-B3B0AD0597BB}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{7DEFD7AE-BE24-4BEF-9933-1EB4E3CF575D}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [TCP Query User{F17F9C5F-7F22-4018-BD28-32B70BA245A4}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [UDP Query User{0EE45959-0DDC-4248-ACA8-337EAFE941D8}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{2DFD577B-FAE0-48E2-A475-4F05D753CAE0}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{A8E47C26-7B18-4563-B4B8-EC9D9FE8F119}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{C4769BF4-258A-4217-9624-679994E90911}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{F3A3574D-6080-487E-BB40-922F896B48CF}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [TCP Query User{5073D244-803A-4D38-9AD8-E70F7D528349}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{C6516D0F-268D-4BB8-BFE4-8AB7B2789E39}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File
FirewallRules: [TCP Query User{2CB40068-8E17-4114-8506-915AF20F35EB}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [UDP Query User{AE184C5E-E314-4779-8010-F49A18623E79}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [TCP Query User{F618F76D-2F17-476F-B928-AF3817367210}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{A7C9AAD2-4A62-42AF-B6E5-1EBCDC53A422}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [{C6D1CC8C-E79A-4D81-95B7-EF1278B3BF63}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{796507FB-4733-4158-82A0-2E913EA4C57D}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{5A6EC7D1-B855-4AB1-838E-044753DEFB7A}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{B707D7B2-0568-4A63-8B59-44031FAC7293}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION
Task: {FB6133C0-C3A3-4C35-BB00-F1422F675C76} - System32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {B6CB2569-6E68-4F62-B3C9-FB6CD758D91D} - System32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753}
C:\DumpStack.log.tmp

EmptyTemp:
End

Uložte do C:\Users\Lenovo\OneDrive jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Rull · #7 Příspěvek od **Rull** » 05 srp 2023 22:22

Fix result of Farbar Recovery Scan Tool (x64) Version: 01-08-2023
Ran by Lenovo (05-08-2023 23:17:54) Run:1
Running from C:\Users\Lenovo\OneDrive
Loaded Profiles: Lenovo
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk:A1B76439FE [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk:5465085A2F [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk:1DC1525F34 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk:104946E0EA [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:7AD7FA8AB1 [5170]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk:89C036AC43 [4306]
HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
FirewallRules: [UDP Query User{A97787BA-CE58-4276-B64B-F2A9F1790F5A}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [TCP Query User{C59D6106-BF4E-48C7-9CF3-1DB7A23B4321}C:\identityv\dwrg.exe] => (Allow) C:\identityv\dwrg.exe => No File
FirewallRules: [UDP Query User{E19A5FDF-4EEB-493D-9170-7CBF38819FC7}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [TCP Query User{BE4B099D-2CB7-43F7-951B-B3B0AD0597BB}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{7DEFD7AE-BE24-4BEF-9933-1EB4E3CF575D}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [TCP Query User{F17F9C5F-7F22-4018-BD28-32B70BA245A4}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe => No File
FirewallRules: [UDP Query User{0EE45959-0DDC-4248-ACA8-337EAFE941D8}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{2DFD577B-FAE0-48E2-A475-4F05D753CAE0}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{A8E47C26-7B18-4563-B4B8-EC9D9FE8F119}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [TCP Query User{C4769BF4-258A-4217-9624-679994E90911}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe => No File
FirewallRules: [UDP Query User{F3A3574D-6080-487E-BB40-922F896B48CF}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [TCP Query User{5073D244-803A-4D38-9AD8-E70F7D528349}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe] => (Allow) C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe => No File
FirewallRules: [{C6516D0F-268D-4BB8-BFE4-8AB7B2789E39}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => No File
FirewallRules: [TCP Query User{2CB40068-8E17-4114-8506-915AF20F35EB}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [UDP Query User{AE184C5E-E314-4779-8010-F49A18623E79}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe] => (Block) C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe => No File
FirewallRules: [TCP Query User{F618F76D-2F17-476F-B928-AF3817367210}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [UDP Query User{A7C9AAD2-4A62-42AF-B6E5-1EBCDC53A422}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe => No File
FirewallRules: [{C6D1CC8C-E79A-4D81-95B7-EF1278B3BF63}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{796507FB-4733-4158-82A0-2E913EA4C57D}] => (Allow) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{5A6EC7D1-B855-4AB1-838E-044753DEFB7A}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
FirewallRules: [{B707D7B2-0568-4A63-8B59-44031FAC7293}] => (Block) C:\Program Files (x86)\Overwolf\0.226.1.3\OverwolfBrowser.exe => No File
HKLM-x32\...\Run: [Genshin Impact_launcher__1_1] => [X]
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION
Task: {FB6133C0-C3A3-4C35-BB00-F1422F675C76} - System32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {B6CB2569-6E68-4F62-B3C9-FB6CD758D91D} - System32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-08-20] (Google LLC -> Google LLC)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753}
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini => ":B1DA6C571C" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk => ":A1B76439FE" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini => ":41964AA945" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk => ":BE32D07BC5" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk => ":B96E9B8455" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk => ":60EC9648C0" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk => ":5465085A2F" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk => ":1DC1525F34" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk => ":104946E0EA" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk => ":7AD7FA8AB1" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk => ":89C036AC43" ADS removed successfully
"HKU\S-1-5-21-1805511044-1846461154-3266819995-1001\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A97787BA-CE58-4276-B64B-F2A9F1790F5A}C:\identityv\dwrg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C59D6106-BF4E-48C7-9CF3-1DB7A23B4321}C:\identityv\dwrg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E19A5FDF-4EEB-493D-9170-7CBF38819FC7}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BE4B099D-2CB7-43F7-951B-B3B0AD0597BB}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7DEFD7AE-BE24-4BEF-9933-1EB4E3CF575D}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F17F9C5F-7F22-4018-BD28-32B70BA245A4}C:\users\lenovo\appdata\local\discord\app-1.0.9010\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0EE45959-0DDC-4248-ACA8-337EAFE941D8}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2DFD577B-FAE0-48E2-A475-4F05D753CAE0}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A8E47C26-7B18-4563-B4B8-EC9D9FE8F119}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C4769BF4-258A-4217-9624-679994E90911}C:\users\lenovo\appdata\local\discord\app-1.0.9008\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F3A3574D-6080-487E-BB40-922F896B48CF}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5073D244-803A-4D38-9AD8-E70F7D528349}C:\users\lenovo\appdata\local\discord\app-1.0.9007\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6516D0F-268D-4BB8-BFE4-8AB7B2789E39}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2CB40068-8E17-4114-8506-915AF20F35EB}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE184C5E-E314-4779-8010-F49A18623E79}C:\users\lenovo\appdata\local\discord\app-1.0.9011\discord.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F618F76D-2F17-476F-B928-AF3817367210}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A7C9AAD2-4A62-42AF-B6E5-1EBCDC53A422}C:\users\lenovo\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C6D1CC8C-E79A-4D81-95B7-EF1278B3BF63}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{796507FB-4733-4158-82A0-2E913EA4C57D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A6EC7D1-B855-4AB1-838E-044753DEFB7A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B707D7B2-0568-4A63-8B59-44031FAC7293}" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Genshin Impact_launcher__1_1" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
"C:\Windows\System32\Tasks\McAfee\McAfee Idle Detection Task" was unlocked. <==== ATTENTION" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FB6133C0-C3A3-4C35-BB00-F1422F675C76}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FB6133C0-C3A3-4C35-BB00-F1422F675C76}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B6CB2569-6E68-4F62-B3C9-FB6CD758D91D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6CB2569-6E68-4F62-B3C9-FB6CD758D91D}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{A3F62378-345E-4577-A3BC-F04F9F3F9C76}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{A39C60F3-BB5C-4F09-9E4C-BEA7B5DB0753}" => not found
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33839018 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 630505934 B
Windows/system/drivers => 31243887 B
Edge => 0 B
Chrome => 3307805331 B
Firefox => 0 B
Opera => 76449244 B

Temp, IE cache, history, cookies, recent:
Default => 10240 B
ProgramData => 10240 B
Public => 10240 B
systemprofile => 357244 B
systemprofile32 => 357244 B
LocalService => 469692 B
NetworkService => 586814 B
Lenovo => 871844489 B

RecycleBin => 8232204857 B
EmptyTemp: => 12.3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 05-08-2023 23:20:51)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 23:20:51 ====

#8 Příspěvek od **Rudy** » 06 srp 2023 10:42

Smazáno. Nastala nějaká změna?

Rull · #9 Příspěvek od **Rull** » 06 srp 2023 18:45

Zkoušel jsem dnes a uz bez lagu

sice zahřívání přetrvává ale to sem nepatří to je nejspíš hw problém

#10 Příspěvek od **Rudy** » 06 srp 2023 19:53

Může být i hw, ale zkuste ještě defragmentovat disk.

VIRY.CZ

prosim o kotrolu PC/NTB laguje

prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje

Re: prosim o kotrolu PC/NTB laguje